re: When not to use package-lock.json VIEW POST


This is more of your own opinion Gajus than a best practice.
Mael has pointed out good reasons to use lockfiles.

2 articles I wrote to provide more context on lockfiles are:

  2. if you use lockfiles, there's also a potential security issue that you should know about:
code of conduct - report abuse